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- The MAILING DATE of this communication appears on the cover sheet with the correspondence address « 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

• Extensions of time maybe available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)D Responsive to communication(s) filed on 04 April 2004 . 
2a)D This action is FINAL. 2b)IE This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quay/e, 1935 CD. 11, 453 O.G. 213. 
Disposition of Claims 

4) S Claim(s) 1-49 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) [3 Claim(s) 15-24,36-43 and 49 is/are allowed. 

6M Claim(s) 1. 2. 4-8. 10. 11. 13. 14. 25-32, 34. 35, 44. 45. 47. 48 is/are rejected. 

7) [3 Claim(s) 3.9,12.33 and 46 is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) [3 The drawing(s) filed on 22 June 1999 is/are: a)E3 accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 

1 1) D The proposed drawing correction filed on is: a)D approved b)D disapproved by the Examiner. 

If approved, corrected drawings are required in reply to this Office action. 

12) D The oath or declaration is objected to by the Examiner. 
Priority under 35 U.S.C. §§119 and 120 

1 3) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 1 9(a)-(d) or (f). 

a)dAII b)D Some*c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

14) Q Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 1 1 9(e) (to a provisional application). 

a) □ The translation of the foreign language provisional application has been received. 

15) D Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 120 and/or 121. 

Attachment(s) 

1 ) Notice of References Cited (PTO-892) 4) □ Interview Summary (PTCM1 3) Paper No(s). . 

2) CH Notice of Draftsperson's Patent Drawing Review (PTO-948) 5) O Notice of Informal Patent Application (PTO-1 52) 

3) O Information Disclosure Statement(s) (PTO-1449) Paper No(s) . 6) Q Other: 
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DETAILED ACTION 



Response to Amendment 



1. Applicant's amendment of claims 1, 25, and 44 has been fully considered and is entered. 



2. Applicant's arguments, see Amendment D, filed 06 April 2004, with respect to the 
rejection(s)of claim(s) 1, 2, 4-8, 10, 11, 13, 14, 25-29, 31, 32, 34, 35, 44, 45, 47, and 48 under 
Halter have been fully considered and are persuasive. Therefore, the rejection has been 
withdrawn. However, upon further consideration, a new ground(s) of rejection is made in view 
of The Open Group. 



3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 



(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 



4. Claims 1, 2, 4-8, 10, 11, 13, 25-29, 32, 34, 35, 44, 45, 47, 48 are rejected under 35 
U.S.C. 102(b) as being anticipated by The Open Group, "X/Open Single Sign-On Service 
(XSSO) - Plugged Authentication Modules". Referring to claims 1, 2, 4, 7, 8, 1 1, 13, 25, 26, 29, 
32, 34, 44, 45, 47, Open Group discloses a single sign-on service wherein an end user need only 
sign-on once in order to access multiple domains (Page 3). The user provides at log-on any and 
all information necessary to provide a user session on the workstation. The XSSO sign-on 
service provides an authentication mechanism for multiple components for implementing user 
authentication and session establishment whilst maintaining a common interface for the calling 



Response to Arguments 



Claim Rejections - 35 USC §102 
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application, which meets the limitation of providing a configurable security key manifest 
operative to contain a non-prespecified number of security keys. The XSSO sign-on service has a 
service cache the provides storage for sign-on information obtained or derived as a part of the 
primary sign-on operation from which it can be retrieved for use in subsequent secondary sign- 
on operation during the current user session (Page 10), which meets the limitation of accepting 
new key attribute data to produce a configured security key manifest and generation of at least 
one new security key for the subscriber based on received key attribute data contained in the 
configured security key manifest. Pages 14-17 and 38 further outline the authentication 
procedures of the single sign-on method illustrating the authentication of an old authentication 
token and the generation of new authentication tokens. Pages 1 10 and 1 14 disclose that the 
authentication token can be cryptographic keys in symmetric or asymmetric form, which meets 
the limitation of generating a new public key pair for the subscriber based on content of the 
configurable security key manifest. 

Referring to claims 5, 6, 10, 27, 28, 35, 48, Open Group discloses that the XSSO sign-on 
support services caches the user authentication information (Pages 10-11), which meets the 
limitation of the configured security key manifest including subscriber data and authentication 
data. The information retrieved or derived during the primary sign-on operation may be cached 
(Page 20), which meets the limitation of preexisting credential set. In order for the user to 
authenticate with a secondary domain, a secondary sign-on operation is run that retrieves the 
information cached during the primary sign-on operation and is used to create secondary 
authentication information (Pages 20, 70, 72, 77, 83), which meets the limitation of comparing 
the updated security key manifest to the preexisting credential set containing at least one 
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preexisting cryptographic security key and updating the preexisting credential set based on the 
comparison. 

Allowable Subject Matter 

5. Claims 1 5-24, 36-43, and 49 are allowed. 

6. Claims 3, 9, 12, 30, 33, 46 are objected to as being dependent upon a rejected base claim, 
but would be allowable if rewritten in independent form including all of the limitations of the 
base claim and any intervening claims. 

7. The following is a statement of reasons for the indication of allowable subject matter: 
The prior art does not disclose a security key manifest as described in the present application that 
can receive new key attribute data through a configurable security key manifest template, or that 
the configured security key manifest is digitally signed. 

Conclusion 

8. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Benjamin E Lanier whose telephone number is 703-305-7684. 
The examiner can normally be reached on M-ThO 7:30am-5:00pm, F 7:30am-4pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on (703)305-1830. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 




Benjamin E. Lanier 



